124.198.132.230

ThreatDown is now the name of the Malwarebytes line of business products. References to Malwarebytes below reflect the amazing technology used to first identify the threat.

Short bio

The IP address 124.198.132.230 was blocked by Malwarebytes because it is associated with a Trojan.

Type of infection

The AsyncRAT Trojan was offered for download as installers for remote clients such as ScreenConnect.

Malicious behavior

Servers at this IP were involved in communications with Windows machines infected with the AsyncRAT Trojan.

Aftermath

If you found traffic tot this IP blocked by Malwarebytes, you should assume your machine is either infected or an attempt to infect it is in progress. It is advisable to run full system scan.

Protection

Malwarebytes blocks the IP address 124.198.132.230 because it is associated with a Trojan.

Associated threats

Backdoor.AsyncRAT

Similiar detections

204.76.203.8 146.70.76.43 139.45.197.106 77.90.185.47 196.251.69.194 179.43.161.226 87.121.84.45 91.224.92.14 45.156.87.165 voguelift.biz View all IP detections >View all Trojan detections >

Products

Services

Features

Platforms

Why ThreatDown

Detection Details

124.198.132.230

Short bio

Type of infection

Malicious behavior

Aftermath

Protection

Associated threats

Similiar detections

Related Content

Products & Services

Partners

Resources

Managed Services Terms & Conditions

Support

Get in Touch